Denial of Service Vulnerability in Cisco IP Phone 7940
CVE-2006-0179

Currently unrated

Key Information:

Vendor: Cisco
Status: Ip Phone 7940
Vendor: CVE Published:; 11 January 2006

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 12%

What is CVE-2006-0179?

The Cisco IP Phone 7940 is vulnerable to a denial of service attack caused by remote attackers sending a flood of TCP SYN packets to arbitrary ports, including port 80. This can lead to a service disruption, rendering the device inoperable until it is rebooted. Network administrators should implement appropriate measures to safeguard their devices against such SYN flood attacks.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2006-0179 - Proof of Concept

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24117

vdb-entryx_refsource_XF

http://www.osvdb.org/22469

vdb-entryx_refsource_OSVDB

http://www.vupen.com/english/advisories/2006/0202

vdb-entryx_refsource_VUPEN

EPSS Score

12% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 11, 2006
👾
Exploit known to exist
Jan 11, 2006
Vulnerability published
Jan 11, 2006
Vulnerability Reserved
Jan 11, 2006

CVE-2006-0179 Data

JSON